Commit message (Collapse) | Author | Age | Files | Lines | |
---|---|---|---|---|---|
* | fix base64 bogus auth keys | Bryan Newbold | 2019-01-04 | 1 | -2/+2 |
| | |||||
* | add superuser role/flag | Bryan Newbold | 2019-01-04 | 6 | -31/+44 |
| | |||||
* | one-month default session; lock down cookies | Bryan Newbold | 2019-01-04 | 2 | -0/+8 |
| | |||||
* | clean up notes a tiny bit | Bryan Newbold | 2019-01-04 | 6 | -45/+40 |
| | |||||
* | gigantic auth docs | Bryan Newbold | 2019-01-04 | 2 | -154/+215 |
| | |||||
* | update top-level TODO | Bryan Newbold | 2019-01-04 | 1 | -11/+7 |
| | |||||
* | rust: TODO updates | Bryan Newbold | 2019-01-04 | 1 | -4/+7 |
| | |||||
* | remove old single-page site folder | Bryan Newbold | 2019-01-04 | 1 | -196/+0 |
| | |||||
* | backup auth notes | Bryan Newbold | 2019-01-04 | 1 | -0/+85 |
| | |||||
* | update main README | Bryan Newbold | 2019-01-04 | 2 | -32/+39 |
| | |||||
* | update rust README | Bryan Newbold | 2019-01-04 | 1 | -1/+16 |
| | |||||
* | document rust fatcatd config | Bryan Newbold | 2019-01-04 | 3 | -9/+36 |
| | |||||
* | use .env for all config (and document it) | Bryan Newbold | 2019-01-04 | 5 | -1/+15 |
| | |||||
* | basic OIDC auth working | Bryan Newbold | 2019-01-03 | 4 | -30/+44 |
| | |||||
* | fix rust side of login | Bryan Newbold | 2019-01-03 | 2 | -8/+18 |
| | |||||
* | allow passing prefered_username in oidc signup/login | Bryan Newbold | 2019-01-03 | 6 | -5/+45 |
| | |||||
* | account page and renaming | Bryan Newbold | 2019-01-03 | 7 | -22/+85 |
| | |||||
* | several auth improvements | Bryan Newbold | 2019-01-03 | 8 | -24/+170 |
| | |||||
* | require pymacaroons | Bryan Newbold | 2019-01-03 | 2 | -33/+66 |
| | |||||
* | python codegen | Bryan Newbold | 2019-01-03 | 3 | -0/+112 |
| | |||||
* | editor update | Bryan Newbold | 2019-01-03 | 2 | -4/+127 |
| | |||||
* | rust codegen | Bryan Newbold | 2019-01-03 | 9 | -5/+433 |
| | |||||
* | better username constraints in SQL | Bryan Newbold | 2019-01-03 | 1 | -1/+3 |
| | |||||
* | schema for username updates | Bryan Newbold | 2019-01-03 | 1 | -0/+28 |
| | |||||
* | python codegen | Bryan Newbold | 2019-01-03 | 10 | -3/+580 |
| | |||||
* | start to impl oidc auth | Bryan Newbold | 2019-01-03 | 4 | -8/+146 |
| | |||||
* | OIDC auth table, and is_active editor flag | Bryan Newbold | 2019-01-03 | 2 | -0/+13 |
| | |||||
* | crude /auth/oidc endpoint (and codegen) | Bryan Newbold | 2019-01-03 | 11 | -39/+670 |
| | |||||
* | start on webface oauth2/oidc web auth | Bryan Newbold | 2019-01-02 | 6 | -61/+222 |
| | |||||
* | don't need to supply editor_id now | Bryan Newbold | 2018-12-31 | 2 | -8/+4 |
| | |||||
* | add crude/manual auth token to python tests (fixing them) | Bryan Newbold | 2018-12-31 | 2 | -3/+14 |
| | |||||
* | rust fmt | Bryan Newbold | 2018-12-31 | 3 | -11/+4 |
| | |||||
* | add missing security/auth declarations | Bryan Newbold | 2018-12-31 | 9 | -42/+258 |
| | |||||
* | make editor_id optional when createding editgroup | Bryan Newbold | 2018-12-31 | 12 | -19/+67 |
| | | | | The editor_id can be infered from auth metadata. | ||||
* | make admin auth_epoch old so test tokens don't expire | Bryan Newbold | 2018-12-31 | 1 | -4/+4 |
| | |||||
* | allow multiple 'alt' keys to be specified in env | Bryan Newbold | 2018-12-31 | 3 | -1/+32 |
| | |||||
* | add dummy key to gitlab CI env | Bryan Newbold | 2018-12-31 | 1 | -0/+3 |
| | |||||
* | bit of auth docs | Bryan Newbold | 2018-12-31 | 3 | -0/+7 |
| | |||||
* | crude admin auth in tests | Bryan Newbold | 2018-12-31 | 4 | -21/+69 |
| | |||||
* | add auth middleware back in | Bryan Newbold | 2018-12-31 | 2 | -3/+95 |
| | | | | | | | | | I was hoping I didn't need this middleware, but I actually do, or the swagger generated code returns unauthenticated. The middleware doesn't actually do much validation, just extracts the (string) token and does nothing with it. Acutal verification happens in user code using AuthData struct. | ||||
* | tests: disable client tests | Bryan Newbold | 2018-12-31 | 2 | -23/+25 |
| | | | | | | | | | | | | But un-comments a bunch of code (and fixes type bugs with that). Something about calling iron::http() has broken, such that the call blocks. I thought it might be a port thing, but doesn't seem like it. Presumably this is what was causing problems with the "old_python_tests" second test previously. For now, just disabling; these integration-level tests best done from python anyways. | ||||
* | rustfmt; implement role-based auth checks | Bryan Newbold | 2018-12-31 | 8 | -107/+304 |
| | |||||
* | codegen | Bryan Newbold | 2018-12-31 | 7 | -2035/+1380 |
| | |||||
* | api spec: more auth responses | Bryan Newbold | 2018-12-31 | 1 | -5/+47 |
| | |||||
* | wire-up auth config via ENV | Bryan Newbold | 2018-12-31 | 6 | -49/+56 |
| | |||||
* | notes and TODO (WIP) | Bryan Newbold | 2018-12-29 | 2 | -2/+49 |
| | |||||
* | include unwrap() in tests | Bryan Newbold | 2018-12-29 | 1 | -1/+1 |
| | |||||
* | basic auth unittests | Bryan Newbold | 2018-12-28 | 4 | -6/+55 |
| | |||||
* | more auth refactoring | Bryan Newbold | 2018-12-28 | 4 | -59/+76 |
| | |||||
* | start refactor of auth code | Bryan Newbold | 2018-12-28 | 7 | -188/+121 |
| | | | | | | | Pulls auth code (which requires the persistent state of a signing keyring) into a struct. Doesn't try verify macaroon in middleware, do it in individual wrappers. |